7 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-1000559
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - qutebrowser version introduced in v0.11.0 1179ee7a937fb31414d77d9970bac21095358449 contains a Cross Site Scripting XSS vulnerability in history command,...
openSUSE Security Update : qutebrowser (openSUSE-2018-775)
This update for qutebrowser fixes the following issues : Security issue fixed : - CVE-2018-1000559: Fix an XSS issue on qute://history boo1101507. - CVE-2018-10895: Fix CSRF issue on the qute://settings page boo1100968. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...
openSUSE Security Update : qutebrowser (openSUSE-2018-774)
This update for qutebrowser fixes the following issues : Security issue fixed : - CVE-2018-1000559: Fix an XSS issue on qute://history boo1101507. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Upda...
openSUSE: Security Advisory for qutebrowser (openSUSE-SU-2018:2130-1)
The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Security update for qutebrowser (moderate)
This update for qutebrowser fixes the following issues: Security issue fixed: - CVE-2018-1000559: Fix an XSS issue on qute://history boo1101507. - CVE-2018-10895: Fix CSRF issue on the qute://settings page boo1100968...
CVE-2018-1000559
qutebrowser version introduced in v0.11.0 1179ee7a937fb31414d77d9970bac21095358449 contains a Cross Site Scripting XSS vulnerability in history command, qute://history page that can result in Via injected JavaScript code, a website can steal the user's browsing history. This attack appear to be...
CVE-2018-1000559
The CVE-2018-1000559 issue affects qutebrowser, introduced in v0.11.0, where a Cross Site Scripting (XSS) vulnerability exists in the history command (qute://history). An attacker could exploit it by forcing a victim to view a page with a crafted and then access qutebrowser history, potentially ...